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AMENDMENTS TO THE CLAIMS; 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Claims 1-43. (Cancelled) 

44. (currently amended) A tamper-resistant security device having comprising: 
memory for storing user credentials, including at least a security key^ff^^ 

an Authentication and Key Agreement (AKA) module for performing an AKA process 

with said security key^y^; and 

a communications interface for external communicatio n circuitry , 

wh e r e in said tamper r e sistant s e curity d e vic e furth e r compris e s: 

fH] ^ application for cooperation with said AKA module that performs enhanced 

security processing of at least one parameter associated with said AKA process : and 

an application interface internal to the tamper-resistant security device for 

interfacing said AKA module and said cooperating application. 

45. Canceled. 

46. (currently amended) The tamper-resistant security device according to claim 
4§44, wherein said enhanced security processing includes at least one of: 

pre-processing of at least one AKA input parameter; and 
post-processing of at least one AKA output parameter. 
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47. (currently amended) The tamper-resistant security device according to claim 
4444, wherein said enhanced security processing includes encapsulation of said at least one AKA 
parameter. 

48. (currently amended) The tamper-resistant security device according to claim 4544, 
wherein said cooperating application is receiving at least one AKA parameter from said AKA 
process to generate a further AKA parameter that has higher security than said received AKA 
parameter. 

49. (currently amended) The tamper-resistant security device according to claim 
4§44, wherein said enhanced security processing includes evaluation of a predetermined number 
of consecutive AKA input parameters for verifying that said AKA input parameters can be used 
securely. 

50. (previously presented) The tamper-resistant security device according to claim 49, 
wherein said enhanced security processing further includes combination of a predetermined 
number of consecutive AKA output parameters generated in response to a number of 
corresponding unique AKA input parameters. 

5 1 . (currently amended) The tamper-resistant security device according to claim 44, 
further comprising; 
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means for registration or detection of information representative of security conditions in 
relation to said tamper-resistant security device; and 

means for performing security policy processing based o n information repr e s e ntative of 
s e curity conditions in relation to said tamper r e sistant s e curity d e vioo said information , 

52. (currently amended) The tamper-resistant security device according to claim 5 1 , 
wherein the security conditions reflect at least one of the-an environment in which said security 
device is operated and th^a_network interface over which a request for AKA processing 
originates. 

t 

53. (previously presented) The tamper-resistant security device according to claim 5 1 , 
wherein said security policy processing includes at least one of a security policy decision process 
and a security policy enforcement process. 

54. (previously presented) The tamper-resistant security device according to claim 5 1 , 
wherein said means for performing security policy processing comprises means for selectively 
disabling direct access to said AKA module. 

55. (previously presented) The tamper-resist^t security device according to claim 5 1 , 
wherein said tamper-resistant security device comprises means for detecting whether said 
tamper-resistant security device is operated in its normal environment or in an environment 
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considered insecure, and said means for performing security policy processing comprises means 
for disabling direct access to said AKA module when operated in said insecure environment. 

56. (previously presented) The tamper-resistant security device according to claim 44, 
wherein said cooperating application includes a security enhancing application, and said security 
device further comprises means for transferring a request for AKA processing directly to said 
AKA module if said security device is operated in an environment considered secure, and means 
for transferring said request to said security enhancing application if said security device is 
operated in an environment considered insecure. 

57. (previously presented) The tamper-resistant security device according to claim 44, 
wherein said cooperating application is performing at least part of the computations in 
connection with end-to-end key agreement between users. 

58. (previously presented) The tamper-resistant security device according to claim 44, 
wherein said cooperating application is masking key information generated by said AKA 
module. 

59. (previously presented) The tamper-resistant security device according to claim 44, 
wherein said cooperating application is a software application installed in an application 
environment of said tamper-resistant security device. 
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60. (previously presented) The tamper-resistant security device according to claim 59, 
wherein said application is securely downloaded into said tamper-resistant security device from a 
trusted party. 

61 . (previously presented) The tamper-resistant security device according to claim 44, 
wherein said cooperating application is a privacy enhancing application, which participates in 
managing a user pseudonym. 

62. (previously presented) The tamper-resistant security device according to claim 6 1 , 
wherein said privacy enhancing application is requesting an AKA response from said AKA 
module based on an old user pseudonym and for generating a previously presented user 
pseudonym based on the received AKA response. 

63 . (previously presented) The tamper-resistant security device according to claim 44, 
wherein the application is a software application implemented in an application 

environment of said tamper-resistant security device and adapted for cooperating with said AKA 
module, and said AKA module is also implemented, at least partly, as a software application in 
said application environment. 

64. (previously presented) A user terminal provided with a tamper-resistant security 
device according to claim 44, 



-21 - i 



NASLUND et al. 
Appl. No. 10/530,293 
May 6, 2009 

. 65. (previously presented) The user terminal according to claim 64, wherein said 
cooperating application is at least one of a security enhancing application and a privacy 
enhancing application. 

66. (previously presented) The user terminal according to claim 64, wherein said 
cooperating application is performing enhanced security processing of at least one parameter 
associated with said AKA process. 

67. (previously presented) The user terminal according to claim 66, wherein said 
enhanced security processing includes encapsulation of said at least one AKA parameter for 
producing an output parameter of higher security than said at least one AKA parameter. 

68. (previously presented) The user terminal according to claim 64, further comprising 
means for performing security policy processing based on information representative of security 
conditions in relation to said tamper-resistant security device. 

69. (previously presented) The user terminal according to claim 68, wherein the 
security conditions reflect at least one of the environment in which said security device is 
operated, the network interface over which a request for AKA processing comes, and the 
network used by the user terminal for network communication. 
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70. (previously presented) The user terminal according to claim 68, wherein said 
security policy processing includes at least one of a seciirity policy decision process and a 
security policy enforcement process. 

71 . (previously presented) The user terminal according to claim 68, wherein said 
means for performing security policy processing is implemented in said tamper-resistant security 
device for selectively disabling direct access to said AKA module. 

72. (previously presented) The user terminal according to claim 64, wherein said 
cooperating application is a security enhancing application, and said security device further 
comprises means for transferring a request for AKA processing directly to said AKA module if 
said security device is operated in an environment considered secure, and means for transferring 

« 

said request to said security enhancing application if said security device is operated in an 
environment considered insecure. 

73. (previously presented) The user terminal according to claim 64, wherein said 
cooperating application includes a security enhancing application, and said user terminal ftirther 
comprises means for transferring a request for AKA processing directly to said AKA module if 
said request comes over an interface considered secure, and means for transferring said request 
to said security enhancing application if said request comes over an interface considered 
insecure. 
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74. (previously presented) The user terminal according to claim 73, wherein said 
security enhancing application comprises a number of different security enhancing modules, and 
said security enhancing application is for selecting among said security enhancing modules in 
dependence on the type of interface. 

75. (previously presented) The user terminal according to claim 64, wherein said 
cooperating application is a software application installed in an application environment of said 
tamper-resistant security device. 

76. (previously presented) The user terminal according to claim 64, wherein said 
cooperating appHcation includes a security enhancing application authenticating a network over 
which said user terminal intends to communicate. 

77. (previously presented) A network server managed by a trusted party sharing a 
security key with a tamper-resistant security device implemented in a user terminal according to 
claim 64. 

78. (previously presented) The network server according to claim 77, wherein said 
download application is at least one of a security enhancing application, a privacy enhancing 
application, and a security policy application. 
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